LM7-CH5 PP

What is risk in software projects?

An unwanted event or potential problem with probability between 0 and 1.

T/F: Risk is an unwanted event or a potential problem.

TRUE

Risk is an unwanted [blank] or potential problem.

event

What is risk mitigation?

The reduction of risk.

T/F: Risk mitigation is the “reduction” of risk.

TRUE

Risk [blank] is the reduction of risk.

mitigation

What are the main steps of risk handling?

Identification, prioritization, mitigation, handling plan, monitoring, adjusting.

T/F: Risk handling includes identification, prioritization, mitigation, and monitoring.

TRUE

Risk handling steps include risk identification, prioritization, mitigation, and [blank].

monitoring

What are the steps in Boehm’s risk management breakdown?

Identification, analysis, prioritization, management & planning, resolution, monitoring.

T/F: Boehm’s risk management includes identification, analysis, prioritization, planning, resolution, and monitoring.

TRUE

Boehm’s breakdown includes risk identification, risk analysis, and risk [blank].

prioritization

What sources can identify risks in software projects?

Process/methodology/plan, product/artifacts, resources.

T/F: Risk can be identified from processes, products, and resources.

TRUE

Risk can be identified from processes, products, and [blank].

resources

What plan-related risks should be checked?

Completeness, consistency, accuracy, unrealistic optimism.

T/F: Completeness, consistency, accuracy, and optimism are plan-related risks.

TRUE

Plan-related risks include completeness, [blank], accuracy, and optimism.

consistency

What are risks related to methodology?

Estimation, design, prototyping, review, newness, lack of experience, excessive optimism.

T/F: Lack of experience and excessive optimism are risks in methodology.

TRUE

Risks in methodology include lack of [blank] and excessive optimism.

experience

What are process-related risks?

Incomplete definition, poor execution, lack of training, lack of enforcement.

T/F: Lack of training and enforcement are process-related risks.

TRUE

Process-related risks include lack of training and [blank].

enforcement

What are artifact-related risks?

Not well specified, untested, not utilized.

T/F: Untested artifacts are a source of risk.

TRUE

Artifact-related risks include incomplete, extraneous, or [blank] specifications.

inconsistent

What are product-related risks?

Not well defined, scope creep, unclear or aggressive targets.

T/F: Scope creep is a top cause of product risk.

TRUE

Product-related risks include continuous [blank].

scope creep

What are people-related risks?

Skill gaps, availability, morale, teamwork.

T/F: People risks include skill, availability, morale, and teamwork.

TRUE

People-related risks include skill, [blank], morale, and teamwork.

availability

What are tool-related risks?

Availability, new/untried tools.

T/F: Tool availability is a project risk.

TRUE

Tool risks include availability and [blank] tools.

untried

What are time-related risks?

Excessive optimism, miscalculations.

T/F: Excessive optimism is a time-related risk.

TRUE

Time-related risks include excessive optimism and [blank].

miscalculations

What are finance-related risks?

Underfunding, untimely funds.

T/F: Underfunding is a financial risk.

TRUE

Finance-related risks include underfunding and timeliness of [blank].

funds

What is risk prioritization?

Ordering risks based on evaluation of cost and probability of recovery.

T/F: Risk prioritization is ordering risk items based on evaluation.

TRUE

Risk prioritization orders items through [blank].

evaluation

What factors decide risk priority?

Cost of recovery and probability of recovery.

T/F: High recovery cost means high priority risk.

TRUE

High cost of recovery equals [blank] priority risk.

high

What approaches exist for risk mitigation?

Change/increase resources, improve methodology, reduce deliverables.

T/F: Risk mitigation may include changing resources, processes, or deliverables.

TRUE

Mitigation may include resource changes, process improvements, or modifying [blank].

deliverables

What is mitigation value cost?

Probability of failure × mitigation cost.

T/F: Mitigation value cost = probability of failure × mitigation cost.

TRUE

Mitigation value cost = probability of [blank] × mitigation cost.

failure

How is mitigation allocation done under cost constraint?

Allocate sequentially, maximize total value, or maximize number of risks covered.

T/F: Risk mitigation funds can be allocated sequentially or by maximizing value or number of items.

TRUE

Mitigation allocation can maximize value or number of [blank].

items

What should a risk mitigation plan include?

Prioritized items, chosen approach, expected removal date, dependencies, responsible person.

T/F: A risk mitigation plan must include prioritized items, chosen approach, and responsible person.

TRUE

A risk mitigation plan must include prioritized items and expected risk [blank] date.

removal

How should risks be monitored?

At regular intervals or during project status meetings.

T/F: Risk monitoring should be continuous at intervals or in status meetings.

TRUE

Risk monitoring occurs at regular [blank] or during project status meetings.

intervals